Tag Archive for: patches

Microsoft Edge browser gets its first critical patches

/in

Released a little over a month ago, Microsoft’s new Edge browser has gotten its first set of critical security patches.

As part of its monthly round of security fixes, colloquially known as Patch Tuesday, Microsoft released a critical bulletin, MS15-05, with four patches covering vulnerabilities in the Windows 10-only Edge browser.

Overall this month, Microsoft issued 12 bulletins covering 56 vulnerabilities. Five bulletins were deemed as critical, meaning they should be addressed as soon as possible.

In addition to Edge, this month’s patches cover issues in Internet Explorer, Windows, Office, Exchange, the .Net framework, the Hyper-V virtual machine, Active Directory, and Skype for Business.

To read this article in full or to leave a comment, please click here

Network World Security

PayPal patches potential payment-stealing vulnerability

/in

An XSS hole could apparently have allowed a crook to pop up a realistic PayPal “pay page” and steal the victim’s card data. Paul Ducklin takes a look…
Naked Security – Sophos

Zero days! First official Windows 10 patches arrive…

/in

Given its “rolling update” model, you might have been wondering how long after launch the first Windows 10 updates would take to arrive. The answer? Zero days. (No hyphen.)
Naked Security – Sophos

Microsoft patches Windows zero-day found in Hacking Team’s leaked docs

/in

Microsoft today issued one of its sporadic emergency, or “out-of-band,” security updates to patch a vulnerability in Windows — including the yet-to-be-released Windows 10 — that was uncovered by researchers sifting through the massive cache of emails leaked after a breach of Italian surveillance vendor Hacking Team.

The Milan-based vendor sells surveillance software to governments and corporations, and markets zero-day vulnerabilities that its clients can use to silently infect targets with the firm’s software. Researchers have found several zero-days — flaws that were not fixed before they went public — in the gigabytes of pilfered documents and messages, including three in Adobe’s Flash Player, since July 5.

To read this article in full or to leave a comment, please click here

Network World Security